package com.auth.config;

import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.oauth2.provider.token.TokenStore;
import org.springframework.security.oauth2.provider.token.store.JwtAccessTokenConverter;
import org.springframework.security.oauth2.provider.token.store.JwtTokenStore;

/**
 * @author iszengziqiang@163.com
 * @date 2021-10-22 16:33
 * @Version: 1.0
 * @desc
 */
@Configuration
public class TokenConfig {

    private String SIGNING_KEY = "uaa123";//对称加密，认证服务器和资源服务器使用同样的秘钥

    @Bean
    public TokenStore tokenStore() {
        //JWT令牌存储方案
        return new JwtTokenStore(accessTokenConverter());
    }

    @Bean
    public JwtAccessTokenConverter accessTokenConverter() {
        JwtAccessTokenConverter converter = new JwtAccessTokenConverter();
        converter.setSigningKey(SIGNING_KEY); //对称秘钥，资源服务器使用该秘钥来验证
        return converter;
    }

//    @Bean
//    public TokenStore tokenStore() {
//        //使用内存存储令牌（普通令牌）比较少
//        return new InMemoryTokenStore();
//    }
}
